Resources built
from real work,
not thought leadership
Architecture templates, security checklists, infrastructure blueprints, and code boilerplates distilled from 60+ production projects. Free to use, no strings attached - the tools we wish existed when we started.
Resources people actually use
These four get the most downloads because they solve problems we see on every engagement - and they're unusually direct about what to do.
HIPAA Architecture Checklist - 94 Controls Across 7 Domains
The technical controls NHS trusts and US health startups ask us about most. Not a regulatory summary - a specific implementation checklist covering encryption key management, audit log configuration, network segmentation, access control design, and the six things static analysis tools miss. Used on every healthcare engagement we've run for four years.
Multi-Tenant PostgreSQL Data Model - Annotated with Migration Path
Shared-schema RLS setup with annotated trade-offs, the specific indexes that prevent performance bleed at 5k+ tenants, and a concrete migration path to schema-per-tenant when you eventually need it. Three years of production experience compressed into one document that we genuinely wish had existed when we started building SaaS systems.
Kubernetes Cost Audit Blueprint - The 60% Reduction Playbook
A structured approach to finding the waste that lives in most Kubernetes clusters. Based on the same methodology we used to reduce one client's cloud spend by 60% - $420k annually. Covers resource utilisation analysis, node group rightsizing, spot instance migration, and the FinOps tagging policy that makes cost attribution finally work.
Smart Contract Audit Checklist - What We Check Before Mainnet
The internal checklist our engineers run before a contract goes to external audit. 68 items across access control, reentrancy, arithmetic safety, oracle robustness, gas efficiency, and upgrade safety - the specific checks that static analysis tools like Slither miss and auditors expect you to have already found yourself.